[email protected]NVD:CVE-2012-1823

HistoryMay 11, 2012 - 10:15 a.m.

CVE-2012-1823

2012-05-1110:15:48

CWE-20

[email protected]

web.nvd.nist.gov

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

AI Score

Confidence

High

0.973 High

EPSS

Percentile

99.9%

JSON

sapi/cgi/cgi_main.c in PHP before 5.3.12 and 5.4.x before 5.4.2, when configured as a CGI script (aka php-cgi), does not properly handle query strings that lack an = (equals sign) character, which allows remote attackers to execute arbitrary code by placing command-line options in the query string, related to lack of skipping a certain php_getopt for the ‘d’ case.

Affected configurations

NVD

Node

phpphpRange≤5.3.11

phpphpMatch5.0.0

phpphpMatch5.0.0beta1

phpphpMatch5.0.0beta2

phpphpMatch5.0.0beta3

phpphpMatch5.0.0beta4

phpphpMatch5.0.0rc1

phpphpMatch5.0.0rc2

phpphpMatch5.0.0rc3

phpphpMatch5.0.1

phpphpMatch5.0.2

phpphpMatch5.0.3

phpphpMatch5.0.4

phpphpMatch5.0.5

phpphpMatch5.1.0

phpphpMatch5.1.1

phpphpMatch5.1.2

phpphpMatch5.1.3

phpphpMatch5.1.4

phpphpMatch5.1.5

phpphpMatch5.1.6

phpphpMatch5.2.0

phpphpMatch5.2.1

phpphpMatch5.2.2

phpphpMatch5.2.3

phpphpMatch5.2.4

phpphpMatch5.2.5

phpphpMatch5.2.6

phpphpMatch5.2.7

phpphpMatch5.2.8

phpphpMatch5.2.9

phpphpMatch5.2.10

phpphpMatch5.2.11

phpphpMatch5.2.12

phpphpMatch5.2.13

phpphpMatch5.2.14

phpphpMatch5.2.15

phpphpMatch5.2.16

phpphpMatch5.2.17

phpphpMatch5.3.0

phpphpMatch5.3.1

phpphpMatch5.3.2

phpphpMatch5.3.3

phpphpMatch5.3.4

phpphpMatch5.3.5

phpphpMatch5.3.6

phpphpMatch5.3.7

phpphpMatch5.3.8

phpphpMatch5.3.9

phpphpMatch5.3.10

Node

phpphpMatch5.4.0

phpphpMatch5.4.1

References

eindbazen.net/2012/05/php-cgi-advisory-cve-2012-1823/

h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041

lists.apple.com/archives/security-announce/2012/Sep/msg00004.html

lists.opensuse.org/opensuse-security-announce/2012-05/msg00002.html

lists.opensuse.org/opensuse-security-announce/2012-05/msg00007.html

lists.opensuse.org/opensuse-security-announce/2012-05/msg00011.html

marc.info/?l=bugtraq&m=134012830914727&w=2

rhn.redhat.com/errata/RHSA-2012-0546.html

rhn.redhat.com/errata/RHSA-2012-0547.html

rhn.redhat.com/errata/RHSA-2012-0568.html

rhn.redhat.com/errata/RHSA-2012-0569.html

rhn.redhat.com/errata/RHSA-2012-0570.html

secunia.com/advisories/49014

secunia.com/advisories/49065

secunia.com/advisories/49085

secunia.com/advisories/49087

support.apple.com/kb/HT5501

www.debian.org/security/2012/dsa-2465

www.kb.cert.org/vuls/id/520827

www.kb.cert.org/vuls/id/673343

www.mandriva.com/security/advisories?name=MDVSA-2012:068

www.openwall.com/lists/oss-security/2024/06/07/1

www.php.net/archive/2012.php#id2012-05-03-1

www.php.net/ChangeLog-5.php#5.4.2

www.securitytracker.com/id?1027022

bugs.php.net/bug.php?id=61910

bugs.php.net/patch-display.php?bug_id=61910&patch=cgi.diff&revision=1335984315&display=1

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PKGTQUOA2NTZ3RXN22CSAUJPIRUYRB4B/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W45DBOH56NQDRTOM2DN2LNA2FZIMC3PK/

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

AI Score

Confidence

High

0.973 High

EPSS

Percentile

99.9%

JSON

CVE-2012-1823

Affected configurations

References

Related